From bb8a57e2a7999092d687406879d9a7104d2ee5e2 Mon Sep 17 00:00:00 2001
From: Damir Mukimov <mukimov.d@gmail.com>
Date: Wed, 24 Dec 2025 21:17:41 +0100
Subject: [PATCH] feat: Add Gitea Actions runners configuration

---
 k8s/gitea-runners/configmap.yaml       |  9 ++++
 k8s/gitea-runners/deployment.yaml      | 64 ++++++++++++++++++++++++++
 k8s/gitea-runners/namespace.yaml       |  7 +++
 k8s/gitea-runners/secret.yaml.template |  9 ++++
 4 files changed, 89 insertions(+)
 create mode 100644 k8s/gitea-runners/configmap.yaml
 create mode 100644 k8s/gitea-runners/deployment.yaml
 create mode 100644 k8s/gitea-runners/namespace.yaml
 create mode 100644 k8s/gitea-runners/secret.yaml.template

diff --git a/k8s/gitea-runners/configmap.yaml b/k8s/gitea-runners/configmap.yaml
new file mode 100644
index 0000000..188cac4
--- /dev/null
+++ b/k8s/gitea-runners/configmap.yaml
@@ -0,0 +1,9 @@
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: gitea-runner-config
+  namespace: gitea-runners
+data:
+  GITEA_URL: "https://gitea.bk.glpx.pro"
+  GITEA_TOKEN: ""  # Will be set from secret
+
diff --git a/k8s/gitea-runners/deployment.yaml b/k8s/gitea-runners/deployment.yaml
new file mode 100644
index 0000000..bb5a146
--- /dev/null
+++ b/k8s/gitea-runners/deployment.yaml
@@ -0,0 +1,64 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: gitea-runner
+  namespace: gitea-runners
+  labels:
+    app: gitea-runner
+spec:
+  replicas: 4
+  selector:
+    matchLabels:
+      app: gitea-runner
+  template:
+    metadata:
+      labels:
+        app: gitea-runner
+    spec:
+      containers:
+      - name: docker-daemon
+        image: docker:dind
+        env:
+        - name: DOCKER_TLS_CERTDIR
+          value: ""
+        securityContext:
+          privileged: true
+        volumeMounts:
+        - name: docker-graph-storage
+          mountPath: /var/lib/docker
+      - name: runner
+        image: gitea/act_runner:latest
+        env:
+        - name: GITEA_INSTANCE_URL
+          value: "http://gitea.gitea.svc.cluster.local:3000"
+        - name: GITEA_RUNNER_REGISTRATION_TOKEN
+          valueFrom:
+            secretKeyRef:
+              name: gitea-runner-secret
+              key: GITEA_RUNNER_REGISTRATION_TOKEN
+        - name: GITEA_RUNNER_NAME
+          valueFrom:
+            fieldRef:
+              fieldPath: metadata.name
+        - name: GITEA_RUNNER_LABELS
+          value: "ubuntu-latest:docker://node:18-bullseye,ubuntu-22.04:docker://node:18-bullseye,ubuntu-20.04:docker://node:18-bullseye"
+        - name: DOCKER_HOST
+          value: "tcp://localhost:2375"
+        volumeMounts:
+        - name: runner-data
+          mountPath: /data
+        - name: docker-graph-storage
+          mountPath: /var/lib/docker
+        resources:
+          requests:
+            memory: "512Mi"
+            cpu: "250m"
+          limits:
+            memory: "2Gi"
+            cpu: "2000m"
+      volumes:
+      - name: runner-data
+        emptyDir: {}
+      - name: docker-graph-storage
+        emptyDir: {}
+      dnsPolicy: ClusterFirst
diff --git a/k8s/gitea-runners/namespace.yaml b/k8s/gitea-runners/namespace.yaml
new file mode 100644
index 0000000..4b2791a
--- /dev/null
+++ b/k8s/gitea-runners/namespace.yaml
@@ -0,0 +1,7 @@
+apiVersion: v1
+kind: Namespace
+metadata:
+  name: gitea-runners
+  labels:
+    name: gitea-runners
+
diff --git a/k8s/gitea-runners/secret.yaml.template b/k8s/gitea-runners/secret.yaml.template
new file mode 100644
index 0000000..9e550b7
--- /dev/null
+++ b/k8s/gitea-runners/secret.yaml.template
@@ -0,0 +1,9 @@
+apiVersion: v1
+kind: Secret
+metadata:
+  name: gitea-runner-secret
+  namespace: gitea-runners
+type: Opaque
+stringData:
+  GITEA_RUNNER_REGISTRATION_TOKEN: "YOUR_REGISTRATION_TOKEN_HERE"
+